An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location that contains a specially crafted Dynamic Link Library (DLL) file.

Microsoft ATL/MFC Trace Tool build 10.0.30319.1 is vulnerable; other versions may also be affected.